Debian DSA-2800-1 : nss - buffer overflow
High Nessus Plugin ID 71080
SynopsisThe remote Debian host is missing a security-related update.
DescriptionAndrew Tinits reported a potentially exploitable buffer overflow in the Mozilla Network Security Service library (nss). With a specially crafted request a remote attacker could cause a denial of service or possibly execute arbitrary code.
SolutionUpgrade the nss packages.
For the oldstable distribution (squeeze), this problem has been fixed in version 3.12.8-1+squeeze7.
For the stable distribution (wheezy), this problem has been fixed in version 2:3.14.5-1.